Feature Request: Native Active Directory Bridge for Linux/Unix/macOS (AD Bridge)
Feature Request: Native Active Directory Bridge for Linux/Unix/macOS (AD Bridge)
4 votes
We would like to request an AD Bridge feature for Devolutions PAM. We need a native way to join non-Windows systems to Active Directory to eliminate local account management.
Key Requirements:
- Identity Consolidation: Allow AD users to log into Linux/Unix/macOS natively via PAM integration.
- Centralized UID/GID Mapping: Manage Unix attributes directly within the Devolutions/AD environment.
- Instant Offboarding: Automatically revoke Linux access the moment an AD account is disabled.
All Comments (1)
Hi @sindhupotnuru,
Thanks for the request.
Building a native AD Bridge into Devolutions PAM isn't something we're planning to do. This is a mature problem space with dedicated solutions that already handle it well, and we'd rather integrate with those than rebuild them.
SSSD (built into most Linux distros), Winbind, or other commercial options. Once your systems are joined via one of these, Devolutions PAM layers on top for privileged access management, session recording, and credential lifecycle.
Your three requirements — identity consolidation, UID/GID mapping, and instant offboarding — are all handled at the OS level by these tools. AD account disablement propagates automatically. Devolutions PAM handles what comes after.
Cheers,
Luc Fauvel